Vulnerabilities > Google > Tensorflow > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-30 | CVE-2021-35958 | Path Traversal vulnerability in Google Tensorflow TensorFlow through 2.5.0 allows attackers to overwrite arbitrary files via a crafted archive when tf.keras.utils.get_file is used with extract=True. | 9.1 |
| 2020-09-25 | CVE-2020-15196 | Out-of-bounds Read vulnerability in Google Tensorflow 2.3.0 In Tensorflow version 2.3.0, the `SparseCountSparseOutput` and `RaggedCountSparseOutput` implementations don't validate that the `weights` tensor has the same shape as the data. | 9.9 |
| 2020-09-25 | CVE-2020-15202 | In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `Shard` API in TensorFlow expects the last argument to be a function taking two `int64` (i.e., `long long`) arguments. | 9.0 |
| 2020-09-25 | CVE-2020-15205 | Out-of-bounds Write vulnerability in multiple products In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `data_splits` argument of `tf.raw_ops.StringNGrams` lacks validation. | 9.8 |
| 2020-09-25 | CVE-2020-15207 | Out-of-bounds Write vulnerability in multiple products In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, to mimic Python's indexing with negative values, TFLite uses `ResolveAxis` to convert negative values to positive indices. | 9.0 |
| 2020-09-25 | CVE-2020-15208 | Out-of-bounds Write vulnerability in multiple products In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, when determining the common dimension size of two tensors, TFLite uses a `DCHECK` which is no-op outside of debug compilation modes. | 9.8 |
| 2019-12-16 | CVE-2019-16778 | Incorrect Conversion between Numeric Types vulnerability in Google Tensorflow In TensorFlow before 1.15, a heap buffer overflow in UnsortedSegmentSum can be produced when the Index template argument is int32. | 9.8 |
| 2019-04-24 | CVE-2018-7575 | Integer Overflow or Wraparound vulnerability in Google Tensorflow Google TensorFlow 1.7.x and earlier is affected by a Buffer Overflow vulnerability. | 9.8 |